OIG Exclusion Screening for Your Therapy Practice: Requirements, Frequency, and Step-by-Step Compliance Guide

Initial Employee and Vendor Screening

Begin exclusion screening before day one. You should screen every prospective employee, therapist, contractor, student, owner, and key vendor against the OIG exclusion list to protect federal healthcare program compliance and your reimbursement eligibility. Build this check into your conditional offer and onboarding workflow so no one provides billable services until cleared.

Who and what to verify

• Individuals: legal name, prior names/aliases, date of birth, and, if permissible, the last four digits of SSN or NPI to reduce false positives.
• Entities: legal business name, DBAs, TIN/EIN, and principals who influence billing or care delivery.

Step-by-step onboarding protocol

• Collect identifiers and a signed attestation confirming the candidate is not excluded from federal healthcare programs.
• Search the OIG exclusion list using all known names and record exact parameters used.
• Document results immediately (pass/fail, date/time, reviewer) to meet compliance documentation requirements.
• Delay access to scheduling, billing, or clinical systems until the candidate passes screening.

Vendors at the start

Apply vendor exclusion verification to billing companies, staffing agencies, telehealth platforms, and other third parties tied to your claims or care. Require contract clauses mandating initial screening, ongoing monitoring, and prompt notification of any status changes.

Monthly Exclusion List Checks

Screening is not a one-and-done task. Conduct monthly exclusion list checks as part of your ongoing exclusion screening protocols. This cadence aligns with industry expectations and helps you quickly identify changes that could affect healthcare program reimbursement eligibility.

How to operationalize monthly checks

• Create a current roster of all employees, contractors, and relevant vendors; verify it at month-end.
• Search the OIG exclusion list for every individual and entity using standardized queries and name variations.
• Recheck immediately after legal name changes, role changes, or vendor onboarding/offboarding.
• Automate where possible, but keep human review for potential matches to avoid decision errors.

Assign clear ownership (who runs the process, who approves results) and set a recurring calendar reminder. Treat missed cycles as compliance incidents that require follow-up and remediation.

Documentation and Recordkeeping

Your documentation proves diligence. Without it, you cannot show that federal healthcare program compliance activities actually occurred. Build a centralized, auditable record that stands up to payer review or government inquiry.

What to capture every time

• Date/time of each search, full names queried, identifiers used, and data sources.
• Results (no match, potential match, confirmed exclusion) and the reviewer’s name or initials.
• Screenshots or exported reports where available, plus any confirmation numbers.
• For potential matches, your exclusion match investigation notes and final determination.

How to store and retain

• Use a secure repository with access controls and version history; avoid personal drives.
• Apply clear file naming (e.g., “LEIE_2026-04_PracticeRoster_Reviewed.pdf”).
• Follow payer contracts and state rules for retention; many practices maintain records long term to support audits.

Managing Exclusion Matches

Occasionally, a search will flag a potential match. Move quickly and methodically to protect your practice and patients. Your goals: confirm identity, stop any risk exposure, and resolve financial or reporting obligations.

Rapid triage

• Compare key identifiers (DOB, NPI, SSN last four, address history) to separate false positives from likely matches.
• If uncertain, treat as a likely match until disproven, and escalate to compliance leadership or counsel.

Containment and investigation

• Immediately remove the individual or vendor from federally reimbursable activities pending resolution.
• Perform a documented exclusion match investigation: scope dates of involvement, services provided, and claims affected.
• Coordinate with billing to suspend impacted claims and prevent future submissions.

Resolution and remediation

• If confirmed excluded, end engagement consistent with policy and contract terms.
• Work with counsel on repayment or self-disclosure steps required by applicable rules.
• Record root causes and strengthen controls to prevent recurrence.

Vendor and Third-Party Oversight

Vendors can create the same compliance risk as employees. Extend your program to third parties that touch patient care, referrals, documentation, or billing.

Contract controls

• Require vendor exclusion verification at onboarding and monthly thereafter.
• Mandate written notice of ownership changes, key staff changes, or any exclusion within set timeframes.
• Include audit rights, performance reporting, and termination provisions for noncompliance.

Ongoing monitoring

• Collect monthly attestations plus screening logs from high-risk vendors.
• Spot-check vendor rosters against the OIG exclusion list and reconcile any discrepancies.
• Document oversight activities alongside your internal logs to meet compliance documentation requirements.

Developing Compliance Policies

Written policies translate expectations into repeatable action. Keep them practical, role-specific, and easy to train against.

Policy essentials

• Purpose: safeguard federal healthcare program compliance and reimbursement eligibility.
• Scope: employees, contractors, students, owners, volunteers, and defined vendors.
• Frequency: initial screening pre-start and monthly exclusion list checks thereafter.
• Sources: what lists to search and required identifiers.
• Procedures: step-by-step workflows, escalation paths, and exclusion match investigation.
• Documentation: required artifacts, storage location, and retention timelines.
• Accountability: named process owners, approvers, and disciplinary measures for noncompliance.
• Review cycle: annual policy review or sooner if regulations or payer rules change.

Staff Training and Education

Training turns policy into daily practice. Provide concise, role-based education that shows staff exactly how to run searches, document results, and escalate concerns.

Program design

• Onboarding: include an overview of the OIG exclusion list, why it matters, and your screening workflow.
• Annual refreshers: updates on process changes, common pitfalls, and case studies.
• Job aids: step checklists, screenshots of search steps, and examples of acceptable documentation.
• Competency checks: brief quizzes or observed run-throughs to confirm proficiency.

Culture and accountability

• Encourage immediate reporting of potential matches and near-misses without fear of retaliation.
• Share aggregate metrics (on-time screening rate, matches resolved) to reinforce expectations.

Conclusion

By screening at hire, checking monthly, documenting thoroughly, investigating matches promptly, and extending oversight to vendors, you create a reliable shield for your therapy practice. These exclusion screening protocols protect patients, uphold federal healthcare program compliance, and preserve your healthcare program reimbursement eligibility.

FAQs.

How often should therapy practices screen the OIG exclusion list?

Screen at two points: before anyone starts work that touches federally reimbursable services and then every month thereafter. Monthly exclusion list checks help you detect status changes quickly and demonstrate continuous diligence to payers and auditors.

What steps should be taken if an excluded individual is identified?

Act immediately: remove the person or vendor from federally reimbursable activities, open an exclusion match investigation to confirm identity and scope, suspend related claims, consult counsel on repayment or disclosure obligations, document every step, and strengthen controls to prevent recurrence.

Why is documentation important in OIG exclusion screening?

Documentation is your proof that screening occurred and that results were handled correctly. Clear logs, evidence of searches, and resolution notes satisfy compliance documentation requirements, support audits, and reduce financial and legal risk.

How can therapy practices ensure vendor compliance with exclusion screening?

Build vendor exclusion verification into contracts, require monthly attestations and screening logs, perform periodic spot checks against the OIG exclusion list, and reserve audit and termination rights for noncompliance. Keep all vendor oversight records with your internal screening files.